Strix
26.1K

CVE-2016-1440

UnknownEPSS 1.25%

Last modified

CVE-2016-1440 is a vulnerability of currently unknown severity. The proxy process on Cisco Web Security Appliance (WSA) devices through 9.1.0-070 allows remote attackers to cause a denial of service (CPU consumption) by establishing an FTP session and then improperly terminating the control connection after a file transfer, aka Bug ID CSCuy43468.. EPSS estimates a 1.25% chance of exploitation in the next 30 days.

Description

The proxy process on Cisco Web Security Appliance (WSA) devices through 9.1.0-070 allows remote attackers to cause a denial of service (CPU consumption) by establishing an FTP session and then improperly terminating the control connection after a file transfer, aka Bug ID CSCuy43468.

Metrics

EPSS Probability
1.25%

65.6th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoWeb Security Appliance5.6.0-623
CiscoWeb Security Appliance6.0.0-000
CiscoWeb Security Appliance7.1.0
CiscoWeb Security Appliance7.1.1
CiscoWeb Security Appliance7.1.2
CiscoWeb Security Appliance7.1.3
CiscoWeb Security Appliance7.1.4
CiscoWeb Security Appliance7.5.0-000
CiscoWeb Security Appliance7.5.0-825
CiscoWeb Security Appliance7.5.1-000
CiscoWeb Security Appliance7.5.2-000
CiscoWeb Security Appliance7.5.2-hp2-303
CiscoWeb Security Appliance7.7.0-000
CiscoWeb Security Appliance7.7.0-608
CiscoWeb Security Appliance7.7.1-000
CiscoWeb Security Appliance7.7.5-835
CiscoWeb Security Appliance8.0.0-000
CiscoWeb Security Appliance8.0.5
CiscoWeb Security Appliance8.0.5_hp1
CiscoWeb Security Appliance8.0.6
CiscoWeb Security Appliance8.0.6-078
CiscoWeb Security Appliance8.0.6-119
CiscoWeb Security Appliance8.0.7
CiscoWeb Security Appliance8.0.7-142
CiscoWeb Security Appliance8.0.8-mr-113
CiscoWeb Security Appliance8.5.0-497
CiscoWeb Security Appliance8.5.0.000
CiscoWeb Security Appliance8.5.1-021
CiscoWeb Security Appliance8.5.2-024
CiscoWeb Security Appliance8.5.2-027
CiscoWeb Security Appliance8.5.3-055
CiscoWeb Security Appliance8.8.0-000
CiscoWeb Security Appliance8.8.0-085
CiscoWeb Security Appliance9.0.0-193
CiscoWeb Security Appliance9.0_base
CiscoWeb Security Appliance9.1.0-000
CiscoWeb Security Appliance9.1.0-070

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2016-1440?
The proxy process on Cisco Web Security Appliance (WSA) devices through 9.1.0-070 allows remote attackers to cause a denial of service (CPU consumption) by establishing an FTP session and then improperly terminating the control connection after a file transfer, aka Bug ID CSCuy43468.
How severe is CVE-2016-1440?
Severity scoring for CVE-2016-1440 is pending analysis. The EPSS model estimates a 1.25% probability of exploitation in the next 30 days.
How do I fix CVE-2016-1440?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2016-1440?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST